Embedding security patterns into a domain model

Título:

Embedding security patterns into a domain model

Autor:

Solinas, Miguel

Colaboradores:

; Antonelli, Rubén Leandro; Fernandez, Eduardo B.

Temas:

SEGURIDAD Y PROTECCIÓNTARJETAS CRCPROGRAMACIÓN ORIENTADA A OBJETOS

En:

International Workshop on Database Expert Systems Application (20th : 2009 : Linz)

Resumen:

Incorporating security patterns at every stage of software development process is one of the most effective ways to build secure software. But how early in the software development process is it possible to apply security patterns? We present here an approach to define security requirements in order to identify security patterns in the very early stages of the software development process, we also an experience with the method in a limited environment. We use natural language to express requirements (understandable to the Requirements Engineer as well as to the Domain Expert), which it is possible to identify the security requirements the corresponding security patterns. Language Extended Lexicon (LEL) scenarios allow to understand, study, model the security domain to represent security patterns. To them we apply the Baseline Mentor Workbench (BMW) for deriving CRC (Class Responsibility Collaboration) cards that represent the security patterns their contextual model domain. BMW is a tool to assist the domain expert during the requirements engineering stage.

URL/DOI:

Medio:

Soporte electrónico

Tipo de documento:

Artículo

Descripción física:

Datos electrónicos (1 archivo: 359 KB)

Idioma:

Español

Publicación:

, 2009

Puede solicitar más fácilmente el ejemplar con: A0233

Ver estantes